$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft File: 34071A863A3C6EF2DD36795F45540E2FB68950A0.mft (raw, json) Hash identifier: gkHPHZPp4YaP+MM6MRYtzbnRaq2xxtxc39fzSM0IFAw= Subject key identifier: B4:86:76:81:8F:29:5D:9D:71:71:90:C5:11:82:2A:9F:42:96:17:06 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 51B25E9BE8677AD6B51F255CB0C5638350A8F733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft Manifest number: 06B8 Signing time: Fri 09 May 2025 14:18:12 +0000 Manifest this update: Fri 09 May 2025 14:13:12 +0000 Manifest next update: Sat 10 May 2025 14:26:12 +0000 Files and hashes: 1: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (hash: cLW/biMRwR7zRrRPFacawZTNPUq9jmMexiFzyeHhVJ4=) 2: 3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa (hash: DN/E6aOFiV8KoFntSlnkk78fDXrIalkTpGLDVfdtSoM=) 3: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (hash: tXrN0zoKF82QapDtfGgfQ/sKCgpFN3PcfxbF24KevGM=) 4: 323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa (hash: DNK4vnrgAUMBFTQF62of1cSQgwMSTE8r5u7W1r1aQzI=) 5: 323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa (hash: SPVnXgzc6DdCcPNaKseycoy7ZTTw0qv3w3c7rqopVw0=) 6: 34071A863A3C6EF2DD36795F45540E2FB68950A0.crl (hash: SYG+lUsvA2nV95hVNNlnSKNgBtHBXsfiAw2EFTANbo8=) 7: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (hash: JFgikoosW77rCCGiBkowQ97xtUQuU8MrNrAShHYoknM=) 8: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (hash: YBcj0Y7Hb7dgFTi+rZqUgqhjt4rx48fgaI0O88QVy6s=) 9: 323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa (hash: enaySFUpt7HUACHfd9TuXH57K0gEe6gPHzhcz9XFJXs=) 10: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (hash: f6TUhFqS3isV+/cNk8PgUfCkyR1D652ScYlagjbFUVg=) 11: 323430333a666263303a3a2f33322d3438203d3e203233393539.roa (hash: Ajs11kbN11P2XWfoIJiRn6ZOdr7R8IeCxJs9fIcXO2M=) 12: 323430333a666263303a613030303a3a2f34382d3438203d3e20323132353132.roa (hash: hJxx3nr/lfwP0kEgV9nZ8LhD9nuKvmRGXnwzZAzg9w0=) 13: 3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa (hash: gleXammGNco3AiF4159jPajnO5VNN8RX+h5bhpaHj2c=) Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 14:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b2:5e:9b:e8:67:7a:d6:b5:1f:25:5c:b0:c5:63:83:50:a8:f7:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: May 9 14:13:12 2025 GMT Not After : May 10 14:26:12 2025 GMT Subject: CN=B48676818F295D9D717190C511822A9F42961706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:58:60:60:ff:cc:04:d6:3e:20:02:a2:a8:a0: eb:11:56:08:da:b5:9a:90:d5:b0:0c:d1:fa:d6:fe: 43:25:a3:14:2a:c4:8e:f0:ad:9b:a1:29:85:55:cf: 98:43:fd:96:50:10:0f:47:df:09:ae:b4:b4:f2:fe: 02:c2:94:ca:09:f4:b8:a1:8d:99:d7:56:bc:45:04: d9:65:43:10:01:bd:04:99:cc:8c:d4:85:89:e0:8d: 46:62:45:f0:0a:ec:62:ec:1a:e6:ea:45:91:20:66: 53:5e:72:67:e6:72:90:24:06:fd:d7:90:77:9c:11: b0:e9:19:38:6d:95:c4:28:33:f5:d2:2c:18:68:b6: 8b:cc:49:63:9b:90:78:84:e0:15:38:11:f4:26:e3: 8f:aa:4a:77:19:94:d4:a0:ff:62:8f:75:a2:ce:a5: af:ca:72:45:89:82:f6:12:5b:0b:62:d6:90:1e:de: b3:a6:94:c4:f9:d7:7a:d0:40:8e:e0:2e:b2:9e:a1: 5a:5c:d3:91:f0:6f:ef:2c:17:e1:78:d4:ea:bd:d7: ff:93:ba:3f:75:b0:11:eb:ea:15:0c:80:36:ec:71: c9:7f:f4:02:e5:cf:3e:af:09:5a:40:b0:0a:f6:d2: 6a:7d:c9:f5:2f:ac:bb:c2:a5:2d:24:20:ce:9a:5a: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:86:76:81:8F:29:5D:9D:71:71:90:C5:11:82:2A:9F:42:96:17:06 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:6f:da:a4:65:81:d4:2c:51:87:d1:2f:d4:1e:ec:62:68:61: a9:69:4a:74:ad:eb:07:6e:8e:39:cb:6a:ad:6d:10:57:08:8f: 1b:c7:28:0a:ab:03:ad:f2:54:a6:e9:90:ea:8b:ff:ae:84:9f: 18:f5:a9:19:2f:e3:49:19:4a:46:30:bc:c8:a1:3e:3b:e7:b5: 19:36:ba:8a:a5:88:fc:6f:e4:9b:11:1e:a6:26:d9:09:0c:a9: 07:66:56:7b:32:5a:48:f6:81:2d:ac:43:24:94:2b:81:43:df: c6:69:95:3e:07:4b:fd:10:22:87:30:71:f7:12:da:84:4d:3c: 43:51:83:05:9b:06:06:55:14:0e:7b:af:ad:6f:0c:f0:73:6d: 42:96:aa:82:5b:20:c8:49:93:04:ab:cb:95:66:21:e7:c6:56: 11:a4:b9:25:c3:3b:2e:8f:06:14:49:92:00:d0:81:97:42:43: 7e:bf:fe:94:db:c7:2f:54:84:fd:e3:9c:2d:58:17:a9:53:17: 89:39:a4:42:7a:3f:17:fa:0e:3d:60:3d:3a:0e:32:b4:e5:3d: 6c:3d:34:c8:b2:94:99:bd:fd:2f:e4:fd:69:82:a2:25:53:71: 20:2a:42:a9:a8:05:bb:8f:a3:33:48:94:da:5b:a0:5a:4d:c3: 93:ec:7d:7a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUUbJem+hneta1HyVcsMVjg1Co9zMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MDUwOTE0MTMxMloX DTI1MDUxMDE0MjYxMlowMzExMC8GA1UEAxMoQjQ4Njc2ODE4RjI5NUQ5RDcxNzE5 MEM1MTE4MjJBOUY0Mjk2MTcwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9YYGD/zATWPiACoqig6xFWCNq1mpDVsAzR+tb+QyWjFCrEjvCtm6EphVXP mEP9llAQD0ffCa60tPL+AsKUygn0uKGNmddWvEUE2WVDEAG9BJnMjNSFieCNRmJF 8ArsYuwa5upFkSBmU15yZ+ZykCQG/deQd5wRsOkZOG2VxCgz9dIsGGi2i8xJY5uQ eITgFTgR9Cbjj6pKdxmU1KD/Yo91os6lr8pyRYmC9hJbC2LWkB7es6aUxPnXetBA juAusp6hWlzTkfBv7ywX4XjU6r3X/5O6P3WwEevqFQyANuxxyX/0AuXPPq8JWkCw CvbSan3J9S+su8KlLSQgzppazIkCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBS0hnaB jyldnXFxkMURgiqfQpYXBjAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MGgGCCsGAQUFBwELBFwwWjBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2 ODk1MEEwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAN BgkqhkiG9w0BAQsFAAOCAQEAv2/apGWB1CxRh9Ev1B7sYmhhqWlKdK3rB26OOctq rW0QVwiPG8coCqsDrfJUpumQ6ov/roSfGPWpGS/jSRlKRjC8yKE+O+e1GTa6iqWI /G/kmxEepibZCQypB2ZWezJaSPaBLaxDJJQrgUPfxmmVPgdL/RAihzBx9xLahE08 Q1GDBZsGBlUUDnuvrW8M8HNtQpaqglsgyEmTBKvLlWYh58ZWEaS5JcM7Lo8GFEmS ANCBl0JDfr/+lNvHL1SE/eOcLVgXqVMXiTmkQno/F/oOPWA9Og4ytOU9bD00yLKU mb39L+T9aYKiJVNxICpCqagFu4+jM0iU2lugWk3Dk+x9eg== -----END CERTIFICATE-----Generated at Sat May 10 07:02:49 2025 by rpki-client